Versions Compared

Old Version 1

changes.mady.by.user Sarabjeet Kaur

Saved on

compared with

New Version 2

changes.mady.by.user Sarabjeet Kaur

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

Applies to:Image ModifiedKyvos Enterprise  Image ModifiedKyvos Cloud (Managed Services on AWS)  Image ModifiedKyvos Azure Marketplace

Image ModifiedKyvos AWS Marketplace  Image ModifiedKyvos Single Node Installation (Kyvos SNI)  Image ModifiedKyvos Free (Limited offering for AWS)

...

To configure SAML2.0 as an external authentication provider for the Kyvos Web Portal, perform the following steps. 

  1. On the navigation pane, click Security > Web based SSO.
    The Web Based SSO dialog is displayed. 

  2. Select the Enable External Authentication check box to define the external authentication mechanism for the Kyvos Web portal.
  3. Select the SAML2.0 option from the Provider list.

  4. Enter details as:

    Parameter/FieldComments/Description
    Header NameEnter the name of the HTTP header that contains the user name in the HTTP request.
    Header TypeSelect the type of value to be sent by the external authentication tool as an SSO token.
    Error Redirection URLEnter the URL to which the user will be redirected if there is an error in authenticating the Kyvos application with SAML2.0. This option is displayed only if SAML2.0 is selected as an external authentication provider.
    Both relative and absolute URLs are supported.
    Example: /error/exception.jsp and http://host:port/appname
    Service Provider Single Sign-On Return URLEnter the Kyvos Web Portal URL, on which the application redirects after a single sign-on.
    Service Provider IssuerEnter the name of the service provider issuer to identify your Kyvos Server installation to the Identity Provider. You can use your Kyvos Web Server URL here.
    X.509 Certificate FileUpload the standard format certificate (X.509) file. This is a Privacy Enhanced Mail (PEM)-encoded x509 certificate with the .crt file extension.
    Service Provider Key FileUpload the service provider's private key file. This is an RSA or DSA private key file with .key extension. This is not password protected.
    Single Logout URLEnter the identity provider's single sign-out URL.
    Single Sign-On URLEnter a single sign-on URL. This is the URL generated by SAML2.0 while integrating the Kyvos application.
    Identity Provider IssuerEnter identity provider issuer as generated by SAML2.0.
    X.509 Certificate FileUpload the X.509 certificate file for SAML2.0.


  5. Click the Save button to save changes.